2ce8754910648f0de195056c583b1e7f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2ce8754910648f0de195056c583b1e7f_JaffaCakes118
Size

94KB
MD5

2ce8754910648f0de195056c583b1e7f
SHA1

0a9b3627b211e4e32591691e5d203f796d9c21a2
SHA256

e4b203db6555a6b718d0117594bf782215cc466f976c451e70d982c54f8e0b79
SHA512

7b9a0fc47747605e5216f046684c1475ac630a629c140fbba4fb8711938cad31bb78c41e4ec64781d970887096fb450013de35bd3c81129f56a0153fb063e377
SSDEEP

1536:vK84KW5O9o8wjhS5UESsqmjFj/1JgiRr/UzGhrRyQQw421zrn18gPhmPptoW:vKx89lwjrsdjFhJg0dhrdQw42BnSg8PL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ce8754910648f0de195056c583b1e7f_JaffaCakes118

Files

2ce8754910648f0de195056c583b1e7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

671e8c12286ec0666c2b4283a861daeb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowLongA
DrawEdge
EnumWindows
GetMessagePos
SystemParametersInfoA
BeginDeferWindowPos
IsWindowVisible
CharLowerA
DispatchMessageW
IsChild
GetClipboardData
GetCursor
GetDesktopWindow
EnableScrollBar
ClientToScreen
FindWindowA
GetCursorPos
CreatePopupMenu
IsWindowEnabled
CallWindowProcA
EqualRect
IsDialogMessageA
GetMenuItemInfoA
GetDlgItem
EndPaint
GetKeyState
MessageBoxA

shell32

Shell_NotifyIconA
SHGetFolderPathA
SHGetFileInfoA
DragQueryFileA
SHGetDesktopFolder

kernel32

CreateThread
GetUserDefaultLCID
VirtualAlloc
GetCurrentProcessId
VirtualAllocEx
ExitThread
SetEndOfFile
lstrcpyA
GetVersionExA
HeapAlloc
FindResourceA
GetFileSize
SetErrorMode
CreateFileA
WideCharToMultiByte
VirtualQuery
ExitProcess
SetThreadLocale
LoadLibraryA
GetModuleHandleA
GetCurrentProcess
GetFileAttributesA

oleaut32

SafeArrayCreate
OleLoadPicture
SafeArrayPtrOfIndex
SysReAllocStringLen
VariantChangeType
RegisterTypeLib
SafeArrayUnaccessData
SysStringLen
SafeArrayGetElement
SafeArrayGetUBound

ole32

CoGetObjectContext
CoCreateInstanceEx
CoGetMalloc

comdlg32

FindTextA
GetFileTitleA
GetSaveFileNameA

gdi32

CreateFontIndirectA
GetObjectA
GetPixel
GetRgnBox
CopyEnhMetaFileA
CreatePalette
BitBlt
SetBkMode

msvcrt

malloc
swprintf
wcschr
sqrt
rand
memcpy
log10
wcsncmp
log
memset
exp
sprintf
strlen
srand
memcmp
wcstol

Sections

CODE
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 1024B - Virtual size: 661B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

671e8c12286ec0666c2b4283a861daeb

Headers

File Characteristics

Imports

user32

shell32

kernel32

oleaut32

ole32

comdlg32

gdi32

msvcrt

Sections

CODE Size: 48KB - Virtual size: 47KB

INIT Size: 43KB - Virtual size: 43KB

.bss Size: 1024B - Virtual size: 661B

CODE
Size: 48KB - Virtual size: 47KB

INIT
Size: 43KB - Virtual size: 43KB

.bss
Size: 1024B - Virtual size: 661B